General

  • Target

    f6556966847f0acb8380773e98437300f39c641caa4c9f0611637643cb6b0219

  • Size

    899KB

  • Sample

    240619-2efreavcng

  • MD5

    60f35a8f8f5133abb64b87d9a25d931e

  • SHA1

    faeed7b837da5fc8d1babb5213a9cd6073db9f87

  • SHA256

    f6556966847f0acb8380773e98437300f39c641caa4c9f0611637643cb6b0219

  • SHA512

    a305d50a621004afa73331b8fc83cab59051317c5af4243f809b37ab47d4340c3671d7e95ec084924d4e6a0d3e723353cb53e49e0a6bce95346a5e2e1cf70fca

  • SSDEEP

    24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXs:7wqd87Vs

Score
10/10

Malware Config

Extracted

Family

gh0strat

C2

hackerinvasion.f3322.net

Targets

    • Target

      f6556966847f0acb8380773e98437300f39c641caa4c9f0611637643cb6b0219

    • Size

      899KB

    • MD5

      60f35a8f8f5133abb64b87d9a25d931e

    • SHA1

      faeed7b837da5fc8d1babb5213a9cd6073db9f87

    • SHA256

      f6556966847f0acb8380773e98437300f39c641caa4c9f0611637643cb6b0219

    • SHA512

      a305d50a621004afa73331b8fc83cab59051317c5af4243f809b37ab47d4340c3671d7e95ec084924d4e6a0d3e723353cb53e49e0a6bce95346a5e2e1cf70fca

    • SSDEEP

      24576:7V2bG+2gMir4fgt7ibhRM5QhKehFdMtRj7nH1PXs:7wqd87Vs

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

MITRE ATT&CK Matrix

Tasks